Please register (it's free!) or login to view the remaining preview.

If you are logged in, your referral link [?] is automatically included below.

EMBED CODE (Copy and Paste)

BENEFITS OF DOCUMENT

Diagnose Cloud Security and Risk Standards projects, initiatives, organizations, businesses and processes using accepted diagnostic standards and practices.
Implement evidence-based best practice strategies aligned with overall goals.
Integrate recent advances in Cloud Security and Risk Standards and process design strategies into practice according to best practice guidelines.

DOCUMENT DESCRIPTION

This Cloud Security and Risk Standards Self Assessment helps you diagnose and address the following issues and questions:

IDS/IPS traffic pattern analysis can often detect or block attacks such as a denial-of-service attack or a network scan. However, in some cases this is legitimate traffic (such as using cloud infrastructure for load testing or security testing). Does the cloud provider have a documented exception process for allowing legitimate traffic that the IDS/IPS flags as an attack pattern?

It is clear that the CSP will face a large number of requests from its customers to prove that the CSP is secure and reliable. There a number of audit and compliance considerations for both the CSP and the customer to consider in cloud computing. First, which compliance framework should a CSP adopt to satisfy its customers and manage its own risks?

In addition to the security of your own customer data, customers should also be concerned about what data the provider collects and how the CSP protects that data. Specifically with regard to your customer data, what metadata does the provider have about your data, how is it secured, and what access do you, the customer, have to that metadata?

IDS/IPS content matching can detect or block known malware attacks, virus signatures, and spam signatures, but are also subject to false positives. If the cloud provider provides IDS/IPS services, is there a documented exception process for allowing legitimate traffic that has content similar to malware attacks or spam?

Security and authentication technologies, allied to event logging, in the cloud computing environment can help auditors as they deal with issues related to workflow were those who entered, approved, changed or otherwise touched data authorized to do so, on an individual, group or role-related basis?

As a CSP undertakes to build out or take a fresh look at its service offerings, the CSP should clearly define its business strategy and related risk management philosophy. What market segments or industries does the CSP intend to serve?

How do you know that a breach has occurred, how do you ensure that the CSP notifies you when a breach occurs, and who is responsible for managing the breach notification process (and costs associated with the process)?

An extra consideration when using cloud services concerns the handling of encryption keys - where are the keys stored and how are they made available to application code that needs to decrypt the data for processing?

Another critical success factor is that appropriate governance needs to be in place. That is, is an appropriate organizational structure in place to manage the organization facing the cloud computing solution?

The Self Assessment tool is built in MS Excel. The above preview showcases an example of a completed version. The secondary document includes a blank template, as well as a detailed 140+ page PDF guide. The guide provides a convenient way to distribute and share among the participants to prepare and discuss the Self Assessment.

Got a question about the product? Email us at [email protected] or ask the author directly by using the form to the right. If you cannot view the preview above this document description, go here to view the large preview instead.

Source: Assessment Dashboard - Cloud Security and Risk Standards Excel document

Top Flevy Author [?]

Assessment Dashboard - Cloud Security and Risk Standards

Sold by Gerard Blokdijk (this author has 232 documents)

$79.00

ALL FEES INCLUDED

Add to Cart

This business document is categorized under the function(s):

Information Technology Governance, Risk, & Compliance

It applies to All Industries

File Type: Excel (xlsx)

File Size: 473.3 KB

Related Topic(s): Cloud

Purchase includes lifetime product updates. After your purchase, you will receive an email to download this document.

This product contains a supplemental ZIP document.

Initial upload date (first version): Oct 26, 2017
Most recent version published: Oct 30, 2017

Ask the Author a Question

Must be logged in Click here to log in

CUSTOMER TESTIMONIALS

"As a consulting firm, we had been creating subject matter training materials for our people and found the excellent materials on Flevy, which saved us 100's of hours of re-creating what already exists on the Flevy materials we purchased."

– Michael Evans, Managing Director at Newport LLC

"[Flevy] produces some great work that has been/continues to be of immense help not only to myself, but as I seek to provide professional services to my clients, it give me a large "tool box" of resources that are critical to provide them with the quality of service and outcomes they are expecting."

– Royston Knowles, Executive with 50+ Years of Board Level Experience

"As a small business owner, the resource material available from FlevyPro has proven to be invaluable. The ability to search for material on demand based our project events and client requirements was great for me and proved very beneficial to my clients. Importantly, being able to easily edit and tailor the material for specific purposes helped us to make presentations, knowledge sharing, and toolkit development, which formed part of the overall program collateral. While FlevyPro contains resource material that any consultancy, project or delivery firm must have, it is an essential part of a small firm or independent consultant's toolbox."

– Michael Duff, Managing Director at Change Strategy (UK)

"I have found Flevy to be an amazing resource and library of useful presentations for lean sigma, change management and so many other topics. This has reduced the time I need to spend on preparing for my performance consultation. The library is easily accessible and updates are regularly provided. A wealth of great information."

– Cynthia Howard RN, PhD, Executive Coach at Ei Leadership

"I have used Flevy services for a number of years and have never, ever been disappointed. As a matter of fact, David and his team continue, time after time, to impress me with their willingness to assist and in the real sense of the word. I have concluded in fact that it is not at all just a repository of documents/resources but, in the way that David and his team manage the firm, it is like dealing with consultants always ready to assist, advise and direct you to what you really need, and they always get it right.

I am an international hospitality accomplished senior executive who has worked and lived during the past 35 years in 23 countries in 5 continents and I can humbly say that I know what customer service is, trust me.

Aside from the great and professional service that Flevy's team provide, their wide variety of material is of utmost great quality, professionally put together and most current.

Well done Flevy, keep up the great work and I look forward to continue working with you in the future and to recommend you to a variety of colleagues around the world."

– Roberto Pelliccia, Senior Executive in International Hospitality

"I have used FlevyPro for several business applications. It is a great complement to working with expensive consultants. The quality and effectiveness of the tools are of the highest standards."

– Moritz Bernhoerster, Global Sourcing Director at Fortune 500

"I like your product. I'm frequently designing PowerPoint presentations for my company and your product has given me so many great ideas on the use of charts, layouts, tools, and frameworks. I really think the templates are a valuable asset to the job."

– Roberto Fuentes Martinez, Manager at Technology Transformation Advisory

"As a consultant requiring up to date and professional material that will be of value and use to my clients, I find Flevy a very reliable resource.

The variety and quality of material available through Flevy offers a very useful and commanding source for information. Using Flevy saves me time, enhances my expertise and ends up being a good decision."

– Dennis Gershowitz, Principal at DG Associates

"As a young consulting firm, requests for input from clients vary and it's sometimes impossible to provide expert solutions across a broad spectrum of requirements. That was before I discovered Flevy.com.

Through subscription to this invaluable site of a plethora of topics that are key and crucial to consulting, I have been able to exceed expectations and deliver quality advice and solutions to my clients. The quality and expertise of the authors are exemplary and gives me great confidence to use as part of my service offerings.

I highly recommend this company for any consultant wanting to apply international best practice standards in their service offerings. "

– Nishi Singh, Strategist and MD at NSP Consultants

"If you are looking for great resources to save time with your business presentations, Flevy is truly a value-added resource. Flevy has done all the work for you and we will continue to utilize Flevy as a source to extract up-to-date information and data for our virtual and onsite presentations!"

– Debbi Saffo, President at The NiKhar Group

SELECT CUSTOMERS

Since 2012, we have provided best practices to over 5,000 businesses and organizations of all sizes across the world—in over 130 countries. Below is just a very small sample of our customer base.

Did you know?

The average daily rate of a McKinsey consultant is $6,625 (not including expenses). The average price of a Flevy document is $65.

CUSTOMERS ALSO BOUGHT THESE DOCUMENTS

Cloud Strategy Template 42-page Word document $30.00 Author: R Bradley Consulting Cloud	Get Your Cloud Strategy Right 170-page PDF document $299.00 Author: Martin Palmgren Digital Transformation Cloud	Cloud Security Strategy - Implementation Toolkit Excel workbook and supporting ZIP $249.00 Author: Gerard Blokdijk Cloud	Cloud Center of Excellence (CoE) - Implementation Toolkit Excel workbook and supporting ZIP $149.00 Author: Gerard Blokdijk Cloud
Assessment Dashboard - Cloud Migration Excel workbook and supporting ZIP $79.00 Author: Gerard Blokdijk Cloud	ITIL Unlocked (the missing pieces): Deliver Business Value with IT! - Get your Cloud Strategy Right! 142-page PDF document and supporting PDF $34.99 Author: Martin Palmgren Cloud	Cloud Strategy with Users Scenarios and Business Request 43-slide PowerPoint deck $100.00 Author: stjianga Cloud SaaS	How to Evaluate Cloud Migration Initiation 16-slide PowerPoint deck and supporting Word $25.00 Author: vskumar Cloud
Effects of Cloud Computing 2-page PDF document $20.00 Author: shivomagg Cloud	Cloud Computing - Risks and Opportunities 15-slide PowerPoint deck $35.00 Author: yveszieba Cloud	What Is the Need of Upgrading Cloud Skills for a PM? 14-slide PowerPoint deck $20.00 Author: vskumar Cloud	Cloud Strategy - Implementation Toolkit Excel workbook and supporting ZIP $249.00 Author: Gerard Blokdijk Cloud